Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/Olx2OPqLi2t59eOQ9ocuwtNPIXY.roa
File: Olx2OPqLi2t59eOQ9ocuwtNPIXY.roa (raw, json)
Hash identifier: hvuDhMYm3ffDhj7WcCkOBCd85/wYLAxkad8Cm8bq1N4=
Subject key identifier: 3A:5C:76:38:FA:8B:8B:6B:79:F5:E3:90:F6:87:2E:C2:D3:4F:21:76
Certificate issuer: /CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Certificate serial: 0183CB89E97C6B66E3078920040C96719DFD
Authority key identifier: 7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/Olx2OPqLi2t59eOQ9ocuwtNPIXY.roa
Signing time: Wed 12 Oct 2022 09:32:36 +0000
ROA not before: Wed 12 Oct 2022 09:32:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8426
IP address blocks: 185.154.148.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cb:89:e9:7c:6b:66:e3:07:89:20:04:0c:96:71:9d:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Validity
Not Before: Oct 12 09:32:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a5c7638fa8b8b6b79f5e390f6872ec2d34f2176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f3:7a:f7:35:ac:55:a0:b1:90:8e:27:52:c4:
1c:b2:18:20:3e:39:73:3d:a0:d7:dc:07:c3:95:9b:
f4:f8:8a:89:0d:59:35:84:af:f9:d4:be:e2:3f:4d:
d6:93:7d:27:b8:dc:23:87:de:a0:7a:19:b6:69:65:
cf:65:3c:5c:20:ba:54:e6:bf:0e:7f:89:b0:0c:46:
ef:97:b6:15:7d:b6:46:14:ec:03:df:e6:f1:68:c3:
7b:75:8a:06:c9:2a:d6:c3:27:04:67:cd:50:7d:a5:
d5:eb:f9:75:ff:1e:34:bd:92:1e:25:de:91:92:cf:
e2:58:4c:24:39:5e:65:47:64:bb:58:93:e8:e9:23:
67:a5:a2:cd:03:96:18:99:71:e5:d6:85:1e:08:1a:
4a:79:dd:bf:97:99:43:c5:96:ee:67:a6:e6:2d:0a:
f5:a4:cd:59:7f:b0:07:cd:1c:c9:8c:9d:e3:45:f4:
2a:8e:cc:22:63:fb:ca:aa:0d:63:83:1c:f5:75:fb:
a2:ae:30:1a:2f:19:dc:d8:68:07:8f:d0:a0:34:e6:
db:c9:12:ff:46:63:56:19:b3:67:3b:bb:88:cd:4e:
07:09:05:e0:6c:73:e3:da:fe:99:38:f3:c4:7d:69:
78:c4:0a:46:1e:3d:b8:f5:f2:31:1b:1c:54:45:56:
ce:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:5C:76:38:FA:8B:8B:6B:79:F5:E3:90:F6:87:2E:C2:D3:4F:21:76
X509v3 Authority Key Identifier:
keyid:7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/Olx2OPqLi2t59eOQ9ocuwtNPIXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.148.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:02:28:5a:b6:36:3f:07:22:d2:d1:ca:38:88:28:b7:d1:d4:
7d:36:46:6c:73:1e:0d:3d:d8:82:14:73:e3:67:37:ba:c1:1e:
fb:13:50:68:5b:13:01:6b:6f:b9:ed:6c:fe:5b:82:bf:60:27:
1a:a3:29:da:55:e4:30:de:4e:52:84:45:63:1e:ee:07:50:70:
aa:3f:6f:10:5e:51:20:09:d6:4e:cb:53:c5:eb:42:6c:c4:97:
ec:84:5c:2a:ea:e0:73:18:dd:a7:69:17:f2:1f:6a:25:46:cb:
21:b2:20:00:be:67:a5:3a:70:49:3e:e4:1a:95:05:10:d3:a5:
99:64:6e:b6:ef:94:97:3a:87:50:ba:80:c2:b6:ee:b2:3c:cd:
7a:16:51:26:54:1c:04:3c:8d:4c:2f:49:39:6b:ca:fc:b7:47:
af:52:8b:2a:dd:e0:41:f3:3f:d4:e0:ce:e0:48:d4:5f:79:f6:
06:d7:b5:43:0f:e2:b9:b6:c0:a7:6e:05:e1:9b:9a:8d:77:d2:
73:13:43:a8:35:4e:08:0d:c5:08:85:96:16:53:46:ef:97:5f:
fb:04:da:13:ca:c6:fd:a7:63:50:dd:f6:98:99:86:c4:97:00:
0f:39:d9:63:ed:5d:91:01:63:29:4e:4d:ac:bb:63:53:fe:d4:
ff:99:93:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org